CVE-2007-3157 - IPSecDrv.sys 10.4.0.12 in SafeNET High Assurance Remote 1.4.0 Build 12, and SoftRemote, allows remot

CVE-2007-3157

Summary

IPSecDrv.sys 10.4.0.12 in SafeNET High Assurance Remote 1.4.0 Build 12, and SoftRemote, allows remote attackers to cause a denial of service (infinite loop and system hang) via an invalid packet with certain bytes in an option header, possibly related to the IPv6 support for IPSec.

References

Vulnerable Configurations

cpe:2.3:a:safenet:safenet_highassurance_remote:1.4.0_build_12:*:*:*:*:*:*:*
cpe:2.3:a:safenet:safenet_highassurance_remote:1.4.0_build_12:*:*:*:*:*:*:*
cpe:2.3:a:safenet:softremote_vpn_client:1.4:*:*:*:*:*:*:*
cpe:2.3:a:safenet:softremote_vpn_client:1.4:*:*:*:*:*:*:*

CVSS

Base:	5.0 (as of 29-07-2017 - 01:32)
Impact:
Exploitability:

CWE

NVD-CWE-Other

CAPEC

Access

Vector	Complexity	Authentication
NETWORK	LOW	NONE

Impact

Confidentiality	Integrity	Availability
NONE	NONE	PARTIAL

cvss-vector via4

AV:N/AC:L/Au:N/C:N/I:N/A:P

refmap via4

bid	24385
fulldisc	20070608 SafeNET High Assurance Remote/SoftRemote (IPSecDrv.sys) remote DoS
misc	http://www.digit-labs.org/files/exploits/safenet-dos.c
osvdb	37137
secunia	25574
sreason	2803
xf	safenet-ipsecdrv-dos(34775)

Last major update

29-07-2017 - 01:32

Published

11-06-2007 - 22:30

Last modified

29-07-2017 - 01:32